-
Notifications
You must be signed in to change notification settings - Fork 47
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Add workflow for automatic Cloudflared updates #55
Add workflow for automatic Cloudflared updates #55
Conversation
Elcajon p1
ℹ️ Update Cloudflared to version 2022.2.2
Update cron schedule to 18.00
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Great suggestion. I thought for a moment there might be an easier solution using Dependabot, but I guess this does not work since we are not using any package manager here. We could misuse Docker for that (since Cloudflared is only available as a docker file), but I think this would not make it easier. So unless you have another idea with dependabot, feel free to merge.
Dependabot is currently still somewhat limited in terms of supported formats. I think when using Dockerfiles updates we will also need a separate logic. |
I think that if we use "pull_request_target" instead of "pull_request", it can use the GITHUB_TOKEN. |
I checked the GitHub documentation on this trigger event, which outlines:
Have you get this running in the context of Docker build repositories with |
This is because of security. pull_request_target uses the workflow file from main, while the rest of the repo is taken from the pull request. That's why it's considered unsecure to do things with the code. But I don't think it would be a problem for this. |
Proposed Changes
This PR adds a workflow for automating upstream issued updates.
Changes:
Workflow logic:
Related Issues